You work as a Chief Security Officer for Tech Perfect Inc. You have configured IPSec and ISAKMP
protocol in the company’s network in order to establish a secure communication infrastructure.
ccording to the Internet RFC 2408, which of the following services does the ISAKMP protocol offer to
the network?
Each correct answer represents a part of the solution. Choose all that apply.
A.
It relies upon a system of security associations.
B.
It provides key generation mechanisms.
C.
It authenticates communicating peers.
D.
It protects against threats, such as DoS attack, replay attack, etc.
Explanation:
According to the Internet RFC 2408, the ISAKMP protocol offers the following services
to the network:
It authenticates communicating peers.
It creates and manages security associations.
It provides key generation mechanisms.
It protects against threats, such as DoS attack, replay attack, etc.
Answer option A is incorrect. The ISAKMP protocol does not relies upon a system of security
association. This service is offered by the IPSec
protocol. The ISAKMP only manages these security associations.